Use-After-Free Vulnerability in Linux Kernel's Thunderbolt Component
CVE-2025-40002

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 October 2025

What is CVE-2025-40002?

A use-after-free vulnerability in the Thunderbolt component of the Linux kernel poses significant memory safety concerns. This flaw occurs when the delayed work items in the Thunderbolt driver continue to reference a deallocated memory object. During the execution of these work items, if the associated tunnel is freed, it could lead to the dereferencing of invalid memory, causing potential system instability or exploitation. The vulnerability was identified through static analysis, prompting the need for improved reference counting to ensure that memory remains valid throughout work item execution and to prevent memory leaks.

Affected Version(s)

Linux d6d458d42e1e1544a18f37f1d5c840e00d5261b9

Linux d6d458d42e1e1544a18f37f1d5c840e00d5261b9 < 67600ccfc4f38ebd331b9332ac94717bfbc87ea7

Linux 6.14

References

https://git.kernel.org/stable/c/c07923f6a8729fc27ee652221...

https://git.kernel.org/stable/c/67600ccfc4f38ebd331b9332a...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 18, 2025
Vulnerability Reserved
Apr 16, 2025

JSON